CVE-2021-20399 is a vulnerability in IBM Qradar Siem
Published on July 27, 2021

IBM Qradar SIEM 7.3.0 to 7.3.3 Patch 8 and 7.4.0 to 7.4.3 GA is vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive information or consume memory resources. IBM X-Force ID: 196073.

NVD

Products Associated with CVE-2021-20399

Want to know whenever a new CVE is published for IBM Qradar Siem? stack.watch will email you.

IBM Qradar Siem

Affected Versions

IBM QRadar SIEM:

Version 7.3.0 is affected.
Version 7.4.0 is affected.
Version 7.4.3 is affected.
Version 7.3.3.Patch.8 is affected.

Exploit Probability

EPSS

0.55%

Percentile

67.44%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2021-20399 is a vulnerability in IBM Qradar SiemPublished on July 27, 2021

Products Associated with CVE-2021-20399

Affected Versions

Exploit Probability

CVE-2021-20399 is a vulnerability in IBM Qradar Siem
Published on July 27, 2021